Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/ePF2G46_q6lIZHLciG1d0F3TJyA.roa
File: ePF2G46_q6lIZHLciG1d0F3TJyA.roa (raw, json)
Hash identifier: +hBkrg3N+yMBcM9Wkx3206o1J+L54AE7fajcYSN7E9E=
Subject key identifier: 78:F1:76:1B:8E:BF:AB:A9:48:64:72:DC:88:6D:5D:D0:5D:D3:27:20
Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135
Certificate serial: 01952597D665DD25F81257E1967EBE8FE530
Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/ePF2G46_q6lIZHLciG1d0F3TJyA.roa
Signing time: Thu 20 Feb 2025 23:01:02 +0000
ROA not before: Thu 20 Feb 2025 23:01:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8989
IP address blocks: 2.110.64.0/18 maxlen: 18
2.110.128.0/17 maxlen: 17
90.184.0.0/15 maxlen: 15
2a02:980::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:25:97:d6:65:dd:25:f8:12:57:e1:96:7e:be:8f:e5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135
Validity
Not Before: Feb 20 23:01:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78f1761b8ebfaba9486472dc886d5dd05dd32720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:68:49:db:6f:61:ae:5f:56:93:9b:5d:a0:6a:
f2:65:73:7b:83:24:ee:5f:bd:c9:3e:17:51:be:16:
e8:59:2f:45:06:ff:10:91:85:3f:77:45:d3:3d:cb:
23:81:bd:f9:df:fa:3c:c6:96:89:b8:dd:b9:38:c9:
ce:73:77:4b:e0:de:28:ba:35:d1:a0:be:2d:80:b1:
78:3e:b3:9e:1f:20:5c:b9:c9:19:61:2f:b9:6d:b4:
c2:9b:54:ab:7c:87:03:86:2c:02:fb:a0:cc:30:da:
cb:c8:33:f1:43:5d:0d:c2:ef:2e:4f:85:5d:5c:c5:
13:d4:4b:88:1f:ed:07:15:d3:b1:42:03:d5:fa:52:
81:3f:2b:06:d6:74:ba:f5:7e:43:23:de:cf:35:45:
05:aa:57:c1:46:74:43:f9:ff:f1:5b:5e:5d:dd:cb:
01:ec:8d:00:77:b1:e3:0c:13:a1:1d:dd:c5:84:5d:
1f:e4:e2:ad:d2:36:d8:80:45:37:8c:65:8d:5c:7a:
f0:40:ff:0c:fc:7b:d2:42:5e:77:ec:02:5c:20:38:
70:14:ce:1e:1f:12:4a:37:3b:fb:a6:1a:5d:f1:7e:
d4:b1:97:1a:e3:f6:3b:ce:59:4d:fd:a5:0e:d8:bd:
79:d4:4b:56:03:c9:5b:26:0f:b7:f8:22:4c:f4:5e:
d3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F1:76:1B:8E:BF:AB:A9:48:64:72:DC:88:6D:5D:D0:5D:D3:27:20
X509v3 Authority Key Identifier:
keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/ePF2G46_q6lIZHLciG1d0F3TJyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.110.64.0-2.110.255.255
90.184.0.0/15
IPv6:
2a02:980::/29
Signature Algorithm: sha256WithRSAEncryption
8f:68:68:ec:66:72:13:68:8e:86:e7:70:1f:7c:d8:64:cb:5b:
af:69:90:99:f8:60:10:ff:21:ce:79:f5:1a:98:e8:dc:2f:4d:
0c:b5:cf:b8:f6:ab:9a:83:96:6f:ae:6f:b3:d9:5f:4e:f4:bb:
e2:57:a3:a1:60:78:c2:ae:ee:15:cb:ca:a6:a6:c3:b1:9c:7b:
46:5a:26:d6:a1:68:d7:f7:84:26:17:6a:d7:97:0d:06:e6:cd:
7b:d1:f7:9a:77:c5:a3:60:cf:d1:8c:a2:e4:dd:0f:92:9b:3a:
64:31:8c:74:de:a1:15:89:d1:eb:5e:b8:30:69:12:57:fe:f1:
50:cd:53:8b:f1:99:5f:d4:ba:df:9d:87:e3:99:0f:31:f2:34:
04:a1:d6:ee:66:5e:b6:30:d9:63:a7:cf:7c:14:9c:ae:4e:fc:
31:46:4d:68:21:3b:0c:c7:d1:f7:34:8f:ce:83:0e:47:42:b4:
77:65:81:dc:73:3b:4b:8d:43:75:e9:6b:68:8f:b5:7a:9c:87:
53:a9:26:68:d4:a1:de:b7:b7:bb:ab:03:4b:1c:5d:62:80:b0:
ad:b2:a3:53:64:87:a7:b5:63:99:c3:5a:e3:84:01:ea:3a:3a:
33:00:f9:fe:c9:2c:64:2a:de:49:21:72:a7:6d:33:00:7f:e2:
44:8a:93:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net